Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
321	10	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35292	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

322	9.8	緊急 Network		-	オラクルのOracle WebCenter Sites Support Toolsにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35293	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

323	9.9	緊急 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35294	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

324	7.5	重要 Network		-	オラクルのOracle WebCenter Sites Support Toolsにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35295	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

325	9.8	緊急 Network		-	オラクルのOracle WebCenter Sites Support Toolsにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35296	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

326	9.1	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35298	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

327	8.8	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35299	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

328	9.8	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-35300	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

329	10	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35301	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

330	8.3	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-35302	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354491	-	alcatech_gmbh	bpm_studio_pro	Directory traversal vulnerability in the HTTP server for BPM Studio Pro 4.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request.	NVD-CWE-Other	CVE-2002-0331	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354492	-	xtell	xtell	Buffer overflows in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to execute arbitrary code via (1) a long DNS hostname that is determined using reverse DNS lookups, …	NVD-CWE-Other	CVE-2002-0332	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354493	-	xtell	xtell	Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink …	NVD-CWE-Other	CVE-2002-0333	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354494	-	xtell	xtell	xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file.	NVD-CWE-Other	CVE-2002-0334	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354495	-	galacticomm_technologies	worldgroup worldgroup_lite_personal_server	Buffer overflow in Galacticomm Worldgroup web server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long HTTP GET request.	NVD-CWE-Other	CVE-2002-0335	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354496	-	galacticomm_technologies	worldgroup worldgroup_lite_personal_server	Buffer overflow in Galacticomm Worldgroup FTP server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a LIST command containing a large …	NVD-CWE-Other	CVE-2002-0336	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354497	-	realnetworks	realplayer	RealPlayer 8 allows remote attackers to cause a denial of service (CPU utilization) via malformed .mp3 files.	NVD-CWE-Other	CVE-2002-0337	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354498	-	ritlabs	the_bat	The Bat! 1.53d and 1.54beta, and possibly other versions, allows remote attackers to cause a denial of service (crash) via an attachment whose name includes an MS-DOS device name.	NVD-CWE-Other	CVE-2002-0338	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354499	-	microsoft	windows_media_player	Windows Media Player (WMP) 8.00.00.4477, and possibly other versions, automatically detects and executes .wmf and other content, even when the file's extension or content type does not specify .wmf, …	NVD-CWE-Other	CVE-2002-0340	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm

354500	-	novell	groupwise	GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote attackers to determine the full pathname of the web server via an HTTP request with an invalid HTMLVER parameter.	NVD-CWE-Other	CVE-2002-0341	2016-10-18 11:19	2002-06-25	Show	GitHub Exploit DB Packet Storm